$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft File: F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft (raw, json) Hash identifier: bIHdIfVNlog8pA7O/5vqej/WXNR8+karI8mWt7xzTqo= Subject key identifier: 91:81:AB:D0:3D:FB:04:88:A2:50:EA:94:B5:80:65:67:00:E6:BC:62 Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 080BFDCF6C77599D7FBFF8932DC26E89E8FB4232 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft Manifest number: 02D7 Signing time: Fri 17 Apr 2026 08:10:02 +0000 Manifest this update: Fri 17 Apr 2026 08:05:02 +0000 Manifest next update: Mon 20 Apr 2026 17:19:02 +0000 Files and hashes: 1: 3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa (hash: oOGj5tlcgCuOuQ6ORsdrfX31aFz0B3FN8fvqd8j5T/A=) 2: 3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa (hash: XeC/h72IOu7dA+NCUWie+KTWNqBhpQyXbuk3uFJs7XQ=) 3: 3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa (hash: LrqOLogV2pqJm1JD+jgGDFnoqudanN5BU7ote6ngSrk=) 4: 3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa (hash: R48/rgbNCjjp4lN8u0WLGy1+WSaMSCFGbeTToOjbzmw=) 5: F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl (hash: Vm6e/T5H+JQMvHwSbdY9uyWqHFo+CPVi7TPiXPHj+Dw=) 6: 3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa (hash: yBAmYPcX6Hw9g9sbt5o4PVcLnMdm+J2PfCuUjXQ0T5g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 17:19:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:0b:fd:cf:6c:77:59:9d:7f:bf:f8:93:2d:c2:6e:89:e8:fb:42:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Apr 17 08:05:02 2026 GMT Not After : Apr 20 17:19:02 2026 GMT Subject: CN=9181ABD03DFB0488A250EA94B580656700E6BC62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:41:3c:45:df:88:a1:d3:2b:5b:14:89:10:67: cc:e8:3f:36:bd:71:24:6a:f5:50:20:5a:f9:f0:2d: 74:8e:07:e0:68:66:66:03:0a:f1:66:d2:2b:36:28: dd:d7:26:d0:1e:da:8f:6d:33:02:4c:4d:75:94:26: f0:3a:4c:43:53:90:65:fb:be:14:4a:4d:b4:18:a7: f6:6f:f8:9f:e2:71:d6:aa:c5:71:93:90:2d:8a:62: 04:a1:4c:35:d4:d4:1e:d6:14:8d:92:50:74:89:aa: 8b:74:14:07:6e:ec:32:58:07:6f:e0:f3:b6:c2:92: b5:32:0a:3c:d9:40:15:8a:a9:85:f0:79:90:22:e7: 62:b4:05:d0:09:bb:b1:8e:5f:64:b5:1d:af:cc:3c: 52:58:5f:75:aa:39:ec:f0:16:09:68:f8:b4:3b:c6: 31:27:9f:8c:7f:9d:ce:81:50:eb:8b:3f:d2:3f:a3: 77:df:b0:f0:37:7f:2c:3d:b5:4b:5c:5a:73:95:80: 92:b6:90:bc:8b:4c:a2:27:2a:0b:e7:80:62:64:f2: 10:44:00:83:de:4e:b9:af:e0:c8:89:6b:ba:fc:c5: 1b:54:2f:aa:fd:53:3b:ec:d7:a3:19:84:31:14:0c: 22:1c:ee:0b:d1:4d:0b:20:4e:85:6e:56:72:65:f2: 89:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:81:AB:D0:3D:FB:04:88:A2:50:EA:94:B5:80:65:67:00:E6:BC:62 X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:ab:5a:6c:f3:6e:16:6a:3a:68:ab:4b:6e:ec:32:65:07:4c: 10:47:7f:28:99:66:ad:04:5d:55:2e:7b:4a:46:1f:14:ad:03: 2d:a0:4b:53:d9:b9:8c:6c:83:b2:40:5e:53:2d:61:6f:cf:a6: 94:4b:be:f0:af:37:ec:24:9d:d8:e1:3e:a0:c1:3a:45:29:d5: 35:0a:65:62:6a:42:4d:fe:00:61:d6:73:22:91:bf:07:f8:62: 28:de:42:87:ae:d7:4e:d7:4c:17:f7:65:fa:02:6c:1e:3d:c9: 6a:cd:77:6c:a9:02:39:87:44:b1:ab:bf:76:f7:5d:91:d1:43: 5f:4a:c5:93:bd:72:fa:90:bf:cc:6a:50:4f:1a:c9:ec:5b:92: 04:86:e8:78:5f:d9:ef:6e:e2:67:90:06:d7:7d:c1:5d:08:07: 22:25:bd:95:2b:27:d3:1f:f9:8b:cd:c0:5f:73:70:a3:44:93: d1:fa:eb:67:08:d8:94:1a:42:15:0c:59:9f:34:0f:29:ed:d3: 96:8b:b6:38:4c:e3:60:60:bb:b3:3a:1a:9b:d7:81:39:ef:48: c7:0b:96:e1:26:8a:76:2b:a4:30:cb:bc:07:db:5e:40:1e:1b: 01:5b:3c:08:78:42:18:a2:45:f4:c1:8b:b4:f8:7d:5d:58:7f: 3b:07:98:3f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCAv9z2x3WZ1/v/iTLcJuiej7QjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNjA0MTcwODA1MDJaFw0yNjA0MjAxNzE5MDJaMDMxMTAvBgNV BAMTKDkxODFBQkQwM0RGQjA0ODhBMjUwRUE5NEI1ODA2NTY3MDBFNkJDNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMQTxF34ih0ytbFIkQZ8zoPza9 cSRq9VAgWvnwLXSOB+BoZmYDCvFm0is2KN3XJtAe2o9tMwJMTXWUJvA6TENTkGX7 vhRKTbQYp/Zv+J/icdaqxXGTkC2KYgShTDXU1B7WFI2SUHSJqot0FAdu7DJYB2/g 87bCkrUyCjzZQBWKqYXweZAi52K0BdAJu7GOX2S1Ha/MPFJYX3WqOezwFglo+LQ7 xjEnn4x/nc6BUOuLP9I/o3ffsPA3fyw9tUtcWnOVgJK2kLyLTKInKgvngGJk8hBE AIPeTrmv4MiJa7r8xRtUL6r9Uzvs16MZhDEUDCIc7gvRTQsgToVuVnJl8olFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkYGr0D37BIiiUOqUtYBlZwDmvGIwHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQwM2FmMDEtZjIzOS00YTFmLTgx Y2QtNDEwNmJlYmIyYTIyLzAvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1 RTkxQkJCOTJGNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHCrWmzzbhZqOmirS27sMmUHTBBHfyiZZq0E XVUue0pGHxStAy2gS1PZuYxsg7JAXlMtYW/PppRLvvCvN+wkndjhPqDBOkUp1TUK ZWJqQk3+AGHWcyKRvwf4YijeQoeu107XTBf3ZfoCbB49yWrNd2ypAjmHRLGrv3b3 XZHRQ19KxZO9cvqQv8xqUE8ayexbkgSG6Hhf2e9u4meQBtd9wV0IByIlvZUrJ9Mf +YvNwF9zcKNEk9H662cI2JQaQhUMWZ80Dynt05aLtjhM42Bgu7M6GpvXgTnvSMcL luEminYrpDDLvAfbXkAeGwFbPAh4QhiiRfTBi7T4fV1YfzsHmD8= -----END CERTIFICATE-----Generated at Fri Apr 17 20:41:42 2026 by rpki-client